Privacy policy


Introduction

We take the protection of your data very seriously. Any data you provide on the https://www.karnasch.tools or https://shop.karnasch.tools websites will be collected and used in compliance with the applicable data protection regulations. This privacy policy applies only to our websites. If you are forwarded to another site via a link embedded in our pages, then the new site will inform you about how it will handle your data.

1. General

Personal data is all of the data that personally relates to you, e.g. name, address, email addresses, user behaviour. The following regulations inform you about the nature, scope and purpose of the collection, processing and use of your personal data.Responsible person according to Art. 4 Para. 7, EU General Data Protection Regulation (GDPR) is:

Karnasch Professional Tools GmbH
Siemensstraße 1
68542 Heddesheim

Authorised managing partners:

Hubert Karnasch, Michael Karnasch

Contact:

Tel: +49 (0) 62 03 / 40 39 - 0
Fax: +49 (0) 62 03 / 41 590
E
mail: info(at)karnasch.de

You can reach our data protection officer, Mr Christoph Göritz (c/o GHI Data protection UG (subject to limitation of liability), Beethovenstr. 22, 68165 Mannheim), by email at dsb(at)ghi-datenschutz.de or by using our postal address with the additional information "data protection officer" or the above-mentioned postal address of our data protection officer.

2. Automatic data collection

In the case of merely informative use of the website, i.e. if you do not sign in or provide us with information otherwise, we will only collect the personal data that your browser sends to our server. If you wish to view our website, we collect the following data that is technically needed by us to inform you about our website and to ensure the stability and security (legal basis is Art. 6 I P. 1 f GDPR):Your IP address, date and time of your website visit, time zone difference from Greenwich Mean Time (GMT), content of the request (specific page), access status/HTTP status code, the data quantity transferred in each case, the website from which the request comes, the browser, operating system and its interface used by you as well as the name of your access provider, language and the browser's software version.

The data mentioned will be processed by us for the following purposes:

  • ensuring a smooth connection with the website,
  • ensuring that our website is easy to use,
  • evaluation of the system security and stability as well as for other administrative purposes.

This information is temporarily stored in a so-called log file. The above information is recorded without your intervention and stored until it is deleted automatically. In no case we use the collected data for drawing any conclusions about you.

3. Information about cookies

We use cookies on our site. These are small files that your browser automatically creates and are stored on your device (laptop, tablet, smartphone, etc.) when you visit our site. Cookies do not harm your device; they do not contain viruses, trojans or other malicious software.

Information, resulting in connection with the specific device used is stored in the cookie. However, this does not mean that we are immediately aware of your identity.

On the one hand, the use of cookies serves to make the use of our website more pleasant for you. For example, we use so-called session cookies to recognise that you have already visited certain pages on our website. They are automatically deleted once you leave our site.

We also use temporary cookies that are stored in your device for a specific period of time to improve usability. If you visit our site again to take advantage of our services, it will automatically recognise that you have already been with us and what inputs and settings you have made, so that you do not have to re-enter them.

On the other hand, we use cookies to statistically record the use of our website and to evaluate it for the purpose of optimising our offer. These cookies allow us to automatically recognise that you have already been with us when you revisit our site. These cookies are automatically deleted after a defined period of time.

The data processed by cookies is required for the purposes mentioned previously to protect our legitimate interests as well as those of third parties according to Art. 6 I, P. 1 f GDPR. You can prevent the storage of cookies on your hard disk by selecting "Do not accept cookies" in your browser settings. However, this may functionally restrict our offers.

4. Use of our contact form / contacting us

If you have any questions, please use the contact form provided on our website or send us an email. It is necessary to provide your name and a valid email address so that we can respond to your query. Other details are not personal and may be provided at your discretion.

Data processing for the purpose of establishing contact takes place in accordance with Art. 6, Para. 1, Section a GDPR on the basis of your voluntarily granted consent.

The personal data collected from us as a result of your contact will be automatically deleted after the processing or completion of your enquiry.

5. Use of our webshop

If you want to order in our webshop, the contract to be concluded requires that you provide your personal data, which we need for the processing your order. Mandatory information necessary for the execution of the contracts is marked separately; other details are voluntary. We will process the data provided by so that we can process your order. To this end, we may pass on your payment data to our company*s bank. The legal basis for this is Art. 6 I, P. 1 b GDPR.

You can voluntarily create a customer account, through which we can save your data for later purchases. When an account is created under "customer account", the data you provide will be stored and you may revoke your consent at any time. You may delete all other data, including your user account, in the customer section at any time.

We may also process the information you provide to inform you of other interesting products from our range or to send you emails with technical information.

Due to commercial and tax regulations, we are obliged to save your address, payment and order data for a period of ten years.

6. Newsletter

By giving your consent, you can subscribe to our newsletter, which informs you about our current interesting offers. The advertised goods and services are named in the declaration of consent.

To sign up for our newsletter, we use the so-called double opt-in procedure. This means that after you have signed up, we will send an email to the email address that you entered, asking you to confirm that you wish to receive the newsletter. If you do not confirm your sign up within 48 hours, your information will be blocked and automatically deleted after one month. We will also store your IP addresses and times of sign up and confirmation. The purpose of the procedure is to verify your registration and, if necessary, to inform you about possible misuse of your personal data.

The only requirement for sending the newsletter is your email address. Provision of additional, separately marked data is voluntary and will be used to address you personally. After your confirmation, we will save your email address for the purpose of sending you the newsletter. Legal basis is Art. 6 I, P. 1a, GDPR.

You can revoke your consent to the sending of the newsletter at any time and unsubscribe from the newsletter. You can declare the revocation by clicking on the link provided in each newsletter email by sending an email to twacker(at)karnasch.tools or by sending a message to the contact details provided in the site notice.

7. Integration of Google Maps feature

We use Google Maps on this website. This allows us to show you interactive maps directly in the website and allow you to conveniently use the map feature.

By visiting the website, Google receives the information that you have accessed the corresponding subpage of our website. In addition, the data referred to in Section 2 of this policy will be transmitted. This will be done regardless of whether Google provides a user account that you are logged in to or if there is no user account. When you are logged in to Google, your data will be assigned directly to your account. If you do not wish to be associated with your profile on Google, you must log out before activating the button. Google stores your data as usage profiles and uses them for advertising, market research and/or customised website design purposes. Such an evaluation is done (even for users who are not logged in) to especially provide appropriate advertising and to inform other users of the social network about your activities on our website. You have the right to opt out from the formation of these user profiles by notifying Google.

For more information on the purpose and scope of the data collection and its processing by the plug-in provider, please refer to the provider's privacy policy. For more information about your rights and privacy settings, please visit: https://policies.google.com/privacy?hl=en. Google also processes your personal information in the United States and has subjected itself to the EU/US privacy shield, https://www.privacyshield.gov/EU-US-Framework.

8. Use of Google Analytics

This website uses Google Analytics - a web analysis service provided by Google Inc., ("Google"). Google Analytics uses so-called "cookies", which are text files that are stored on your computer and enable analysis of the website use. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. However, in the event that IP anonymisation is activated on this website, your IP address will be truncated by Google within member states of the European Union or other countries contracted to the European Economic Area agreement, before it is sent. Only in exceptional cases will your full IP address be sent to a Google server in the USA and be truncated there. Google will use this information to evaluate your use of the website on behalf of the operator of this website in order to compile reports on website activity and to provide other services related to website activity and internet usage to the website operator.

The IP address transmitted from your browser by Google Analytics will not be merged with other data compiled by Google.

You may prevent the storing of cookies by using the appropriate setting in your browser's software; however, we must point out that if you do this, you might not be able to use all the features of this website to their fullest possible extent. You may also opt out from Google's collecting and processing of the data, generated by the cookie and related to your use of the website (including your IP address) by downloading and installing the browser plug-in available under the following link: http://tools.google.com/dlpage/gaoptout?hl=de.

We use Google Analytics to analyse and regularly improve the use of our website. By using the statistics, we can improve our website and make it more interesting for you, as the user. For the exceptional cases in which personal information is transferred to the US, Google has subjected itself to the EU/US privacy shield, https://www.privacyshield.gov/EU-US-Framework. The legal basis for the use of Google Analytics is Art. 6 I,P. 1f, GDPR.

Information by third-party service provider: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001. User terms: http://www.google.com/analytics/terms/de.html, Overview of data protection: http://www.google.com/intl/de/analytics/learn/privacy.html, as well as the privacy policy: http://www.google.de/intl/de/policies/privacy.

9. Use of Pingdom

This website uses Pingdom, a web analysis service from Solarwinds, 7171 Southwest Parkway Bldg 400, Austin, Texas 78735 ("Pingdom"). Pingdom uses so-called "cookies", which are text files that are stored on your computer and enable analysis of the website use. The information generated by the cookie about your use of this website is usually transmitted to a Pingdom server in the USA and stored there.

You may prevent the storing of cookies by using the appropriate setting in your browser's software; however, we must point out that if you do this, you might not be able to use all the features of this website to their fullest possible extent. You may also opt out from Pingdom's collecting and processing of the data, generated by the cookie and related to your use of the website (including your IP address) by installing a tool such as'NoScript'.

We use Pingdom to analyse and regularly improve the use of our website. By using the statistics, we can improve our website and make it more interesting for you, as the user. For the exceptional cases in which personal information is transferred to the US, Pingdom has subjected itself to the EU/US privacy shield, https://www.privacyshield.gov/EU-US-Framework. The legal basis for the use of Pingdom is Art. 6 I, P. 1f, GDPR.

Information by third-party service provider: HQ: Solarwinds, 7171 Southwest Parkway Bldg 400, Austin, Texas 78735; Europe: Unit 1101, Buliding 1000, City Gate, Mahon Cork, Ireland. GDPR statement: https://www.solarwinds.com/general-data-protection-regulation-core-it, as well as the privacy policy: https://www.solarwinds.com/legal/privacy

10. DoubleClick by Google

This website also uses the online marketing tool, DoubleClick by Google. DoubleClick uses cookies to place ads that are relevant to users, to improve campaign performance reports, or to prevent a user from seeing the same ads multiple times. Google uses a cookie ID to determine which ads are running in which browser and can prevent them from being displayed multiple times. In addition, DoubleClick uses cookie IDs to track conversions related to ad requests. For example, if a user sees a DoubleClick ad and later goes to the advertiser's website with the same browser and buys something there. According to Google, DoubleClick cookies do not contain personally identifiable information.

Due to the marketing tools used, your browser automatically establishes a direct connection to the Google server. We have no influence on the extent and further use of the data collected through the use of this tool by Google and therefore, we can only inform you according to our level of knowledge: By integrating DoubleClick, Google receives the information that you have accessed the relevant part of our website or have clicked on an ad from us. If you are registered with a service provided by Google, Google may associate the visit with your account. Even if you are not registered with Google or have not logged in, there is a chance that the provider will find and store your IP address.

You can prevent participation in this tracking process in several ways: a) by adjusting your browser software accordingly, in particular, the suppression of third-party cookies will prevent you from receiving any third-party ads; b) by disabling the cookies for conversion tracking by setting your browser to block cookies from the domain "www.googleadservices.com", https://www.google.com/settings/ads, whereby this setting is deleted when you delete your cookies; c) by deactivating the interest-based advertisements of the providers that are part of the "About Ads" self-regulation campaign via the link http://www.aboutads.info/choices, whereby this setting is deleted when you delete your cookies; d) by setting up permanent deactivation in your Firefox, Internet Explorer or Google Chrome browsers under the link http://www.google.com/settings/ads/plugin. We point out that you may not be able to use all features of this offer in full in this case.

The legal basis for the processing of your data is Art. 6 I, P. 1f, GDPR. For further information on DoubleClick by Google, please visit https://www.google.de/doubleclick and http://support.google.com/adsense/answer/2839090, as well as for data protection at Google in general: https://www.google. de/intl/de/policies/privacy. Alternately, you can visit the Network Advertising Initiative (NAI) website at: http://www.networkadvertising.org. Google has subjected itself to the EU/US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.

11. Use of social media plug-ins

We currently use the following social media plug-ins: Facebook.That is, when you visit our site, initially no personal information is passed on to the provider of the plug-ins. The provider of the plug-in can be identified by the marking on the box above its initial letter or logo. We give you the opportunity to communicate directly with the provider of the plug-in via the button. Only if you click on the marked field, thereby activating it, the plug-in provider receives the information that you have accessed the corresponding website of our online offering. In addition, only the data specified in this policy will be transmitted. According to the provider in Germany, the IP address is anonymised immediately after collection in the case of Facebook. By activating the plug-in, personal data will be transmitted by you to the respective plug-in provider and stored there (in the case of US providers in the USA). Since the plug-in provider carries out the data collection, in particular via cookies, we recommend deleting all cookies before clicking on the greyed-out box via the security settings of your browser.

Neither do we have any influence on the collected data and data processing operations nor are we aware of the full extent of data collection, the purpose of the processing as well as the retention periods. We also have no information about how to delete the data collected by the plug-in provider.

The plug-in provider stores your data as usage profiles and uses them for advertising, market research and/or customised website design purposes. Such an evaluation is done (also for users who are not logged in) to especially display appropriate advertising and to inform other users of the social network about your activities on our website. You have the right to opt out from the formation of these user profiles by notifying the concerned plug-in provider. Via the plug-ins, we offer you the opportunity to interact with the social networks and other users, so that we can improve our offer and make it more interesting for you, as the user. The legal basis for the use of the plug-ins is Art. 6I, P. 1f, GDPR.

The data transfer takes place regardless of whether you have an account with the plug-in provider and are logged in there. If you are logged into the plug-in provider, your data collected from us will be assigned directly to your existing account with the plug-in provider. If you press the activated button and for example, if you link the page, then the plug-in provider will also store this information in your user account and share it publicly with your contacts. We recommend logging out regularly after using a social network, especially before activating the button, as this will prevent you from being assigned to your profile with the plug-in provider.

For more information on the purpose and scope of the data collection and its processing by the plug-in provider, please refer to the privacy statements of these providers provided below. They give you further information about your rights and privacy settings.

Addresses of the concerned plug-in providers and URL with their data protection notices:

Facebook Inc., 1601 S California Ave, Palo Alto, California 94304, USA; http://www.facebook.com/policy.php; for further information about data collection, please visit: http://www.facebook.com/help/186325668085084, http://www.facebook.com/about/privacy/your-info-on-other#applications as well as http://www.facebook.com/about/privacy/your-info#everyoneinfo. Facebook has subjected itself to the EU/US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.

12. Facebook Custom Audiences

The website also uses Facebook's "Custom Audiences" remarketing feature ("Facebook"). This allows users of the website to be shown interest-based advertisements ("Facebook ads") as part of their visit to the Facebook social network or other websites that also use the feature. We are interested in showing you advertisements that are of interest to you in order to make our website more interesting to you.

Due to the marketing tools used, your browser automatically establishes a direct connection to the Facebook server. We have no influence on the extent and further use of the data collected through the use of this tool by Facebook and therefore, we can only inform you according to our level of knowledge: By integrating Facebook Custom Audiences, Facebook receives the information that you have accessed the corresponding page of our website, or have clicked on an advertisement from us. If you are registered with a service provided by Facebook, Facebook may associate the visit with your account. Even if you are not registered with Facebook or have not logged in, there is a chance that the provider will find and store your IP address and other identifying features.

Logged-in users may disable the "Facebook Custom Audiences" feature at https://www.facebook.com/settings/?tab=ads#.

The legal basis for the processing of your data is Art. 6I, P. 1f, GDPR. For more information about data processing by Facebook, please visit: https://www.facebook.com/about/privacy.

13. Rights of the person concerned

You have the right:

  • in accordance with Art. 15 GDPR, to request information about your personal data that is processed by us. In particular, you may request for information on the processing purposes, the category of personal data, the categories of recipients to whom your data was or is being disclosed, the intended retention period, the right of correction, deletion, limitation or opt-out from processing, the existence of a right to complain, the source of their data, unless collected by us, and the existence of automated decision-making including profiling and, where appropriate, meaningful information about their details;
  • pursuant to Art. 16 GDPR, to demand prompt correction of incorrect or completion of your personal data stored with us;
  • in accordance with Art. 17 GDPR, to demand the deletion of your personal data stored by us, unless the processing is required for the exercise of the right to freedom of expression and information, for the fulfilment of a legal obligation, for reasons of public interest or for the assertion, exercise or defence of legal claims;
  • in accordance with Art. 18 GDPR, to demand the restriction of the processing of your personal data, if the accuracy of the data is disputed by you, the processing is illegal, but you reject its deletion and we no longer need the data, you require this to assert, exercise or defend legal claims or you have opted out from processing in accordance with Art. 21 GDPR;
  • pursuant to Art. 20 GDPR, to obtain your personal data provided to us in a structured, usual and machine-readable format or to request the transfer to another person responsible;
  • pursuant to Art. 7 para. 3 GDPR, to revoke at any time your consent once granted to us. As a result, we are no longer allowed to continue the data processing based on this consent for the future, and
  • according to Art. 77 GDPR, to complain to a supervisory authority. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our headquarters.

14. Right to objection

If your personal data is processed on the basis of legitimate interests in accordance with Art. 6I, P. 1 GDPR, you have the right to object to the processing of your personal data in accordance with Art. 21 GDPR, as far as this is substantiated by reasons that arise from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right to object, which will be implemented by us without specifying any particular situation.

If you would like to exercise your right to opt out or object, please send an email to twacker(at)karnasch.tools.

15. Data security

We will use the popular SSL (Secure Socket Layer) method during your site visit, in conjunction with the highest level of encryption supported by your browser. In general, this is 256-bit encryption. If your browser does not support 256-bit encryption, we will use 128-bit v3 technology instead. The key or lock icon displayed in the bottom status bar of your browser indicates whether a specific page of our website is transmitted in encrypted form. The information that you submit to us is always stored on servers within Germany or at least in the European Union.

We also take appropriate technical and organisational security measures to protect your data against accidental or intentional manipulation, partial or total loss, destruction or against unauthorised access by third parties. Our security measures are continuously improved in line with technological developments.

16. Up-to-dateness and amendment to this privacy policy

This privacy policy is currently valid as of May 2018.

It may be necessary to change this privacy policy as a result of the further development of our website and offers or due to changed legal or official requirements. Please visit http://www.karnasch.tools/de/datenschutz/ to download and print the latest privacy policy.